Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. NetBackup™ Security and Encryption Guide
  5. Section III. Encryption of data at rest
  7. NetBackup key management service
  9. Configuring KMS
  11. Creating a key record
NetBackup™ Security and Encryption Guide

Creating a key record

The following procedure shows how to create a key record using a pass phrase and bypassing the prelive state and creating an active key.

Note:

If an attempt is made to add a key to a group that already has an active key, the existing key is automatically moved to the inactive state.

To create a key record and create an active key

  1. To create a key record enter the following command:
    nbkmsutil -createkey -usepphrase -kgname ENCR_mygroup -keyname 
my_latest_key -activate -desc "key for Jan, Feb, March data"
  2. Enter a pass phrase.

Feedback

Was this page helpful?
Previous

Solutions for backing up the KMS data files

Next

Listing keys from a key group

Feedback

Was this page helpful?